Last Updated on August 1, 2021 by Admin 2
What command should be used to view the private VLANs configured on ports and the private VLAN mappings?
- show vlan brief
- show pvlan
- show interfaces switchport
- show mac-address-table
The command show interfaces switchport is used to verify private VLANs configured on ports and the private VLAN mappings. The following is a sample of the output:
This output reveals that Fa3/1 is a promiscuous port in private VLAN (PVLAN) 20. PVLAN 20 is a member of the primary VLAN 200. Since this is a promiscuous port, it is able to exchange information with all other PVLANs associated with VLAN 200.
The show vlan brief command is only used to view the VLANs that exist and the ports that are members of them. No information about PVLANs and member association is included.
The show mac-address-table command is used to view the MAC addresses stored in the switches memory and the port and VLAN they are members of. No information about PVLANs is included in this output.
The command show pvlan is incorrect due to invalid syntax.
Objective:
Infrastructure Security
Sub-Objective:
Configure and verify switch security features